Accenture has confirmed that it experienced a security breach after a cybercriminal claimed to have stolen 35GB of company data and offered the information for sale on a cybercrime forum.
Company Confirms Security Incident
Accenture confirmed that it identified the source of the attack and remediated the incident. The company stated that the incident had no impact on its financial position or operations.
The company did not confirm whether the data theft claims made by the attacker were accurate. No additional information was provided about the nature of the attack.
Accenture provides professional services that help businesses and governments address operational and technology challenges. Its services include technology implementation, cloud migration, and managed services for day-to-day business operations. The company also serves many Fortune 500 organizations.
Hacker Claims to Have Stolen Company Data
On July 6, 2026, a cybercriminal using the handle “888” published a post on a cybercrime forum with the title “Accenture Data Breach.”
The post claimed that 35GB of data had been taken from Accenture’s systems. The claimed data included source code, SSH keys, RSA keys, Azure Storage access keys, Azure Personal Access Tokens, configuration files, and other information.
The individual offered the claimed data for sale in exchange for payment using the Monero digital currency.
The forum post also included a screenshot presented as evidence of the claimed data theft.
Company Has Not Verified the Claims
Accenture acknowledged the occurrence of an attack but did not state whether the hacker successfully obtained the data described in the forum post.
No statement was provided by the company confirming that the listed files or credentials had been accessed or removed. There was also no statement regarding the impact of the incident on any customer, employee, or partner.
Previous Data Sale Claim
This is not the first occasion that the same hacker has attempted to sell data associated with Accenture. In 2024, “888” listed data for sale that was reported to have originated from a third-party incident.
During that earlier incident, the attacker claimed to possess sensitive information, including the personally identifiable information (PII) of more than 30,000 employees.
Accenture stated at that time that those claims were substantially overstated and that the exposed information related to approximately three employees.
Current Status
Accenture has confirmed an attack and that remediation actions were completed. The company has not verified the attacker’s claim that 35GB of data was stolen.
No additional technical details were provided regarding the intrusion, the method used to gain access, the duration of the incident, or whether any investigation remains ongoing.
There was no mention about the issuance of breach notifications to clients, partners, employees, or regulatory authorities in compliance with federal or state regulations, including HIPAA laws.
Image credits: Timon – 558308635, AdobeStock









